CVE-2018-12108
NONE EPSS 63.0%
Published Jun 11, 20188y ago · Modified Jun 17, 20262w ago
Published Jun 11, 2018 8y ago
Last Modified Jun 17, 2026 2w ago
Description
An issue was discovered in Dropbox Lepton 1.2.1. The validateAndCompress function in validation.cc allows remote attackers to cause a denial of service (SIGFPE and application crash) via a malformed file.
Threat Intelligence
EPSS Exploit Probability
63.0% percentile
Exploit & Patch Status
Public Exploit Known
Patch Available
Weaknesses 1
CWE-20 Improper Input Validation Validation
Affected Products 1
| Vendor | Product | Version | Range |
|---|---|---|---|
| dropbox | lepton | 1.2.1 | any |
References 1
- github.com https://github.com/dropbox/lepton/issues/107
Remediation
- github.com https://github.com/dropbox/lepton/issues/107